The Hacker News

Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution

Gemini CLI CVSS 10.0 flaw in versions below 0.39.1 enabled RCE in CI workflows, forcing Google to mandate explicit workspace ...

OpenAI's rival to Claude Code has a very strict command line for AI Agents: Never talk about …

OpenAI's AI Agent, Codex, has been restricted from mentioning mythical creatures like goblins due to an unintended training ...

200,000 MCP servers expose a command execution flaw that Anthropic calls a feature

OX Security confirmed arbitrary command execution on six live platforms and estimates 200,000 MCP servers are exposed. Here's ...

How to build SEO agent skills that actually work

Most AI SEO “skills” are just prompts. Learn the system behind reliable agents: tools, memory, templates, and a built-in ...

Usage-based pricing killing your vibe - here's how to roll your own local AI coding agents

Do we even need Anthropic or OpenAI's top models, or can we get away with a smaller local model? Sure, it might be slower, ...
Hackaday

This Week In Security: State Malware, State Hardware Bans, And Stuxnet Before Stuxnet Was Cool

Making headlines everywhere is the CopyFail Linux kernel vulnerability, which allows local privilege escalation (LPE) from any user to root privileges on most kernels and distributions. Local ...
India Today

Cursor AI Agent wipes out startup database in 9 seconds, founder shares 30-hour chaos timeline

A startup founder said Cursor AI Agent erased the company database in nine seconds. The account traced 30 hours of disruption ...

‘Gone in 9 seconds’: Claude-powered AI agent deletes startup’s entire database

A US-based startup, PocketOS, suffered a devastating outage after an AI agent deleted its production database and backups in ...
Security Boulevard

Escape AI Pentesting Agents 2.0 – A Deep Dive

What each agent actually does (BOLA, Regression testing agent, Business logic testing agent, and others..), how they ...
WGAL on MSN

'Verify you're human' | How to spot the fake CAPTCHA hack

A new online CAPTCHA scam is quietly stealing personal information by tricking users into installing malware through fake ...
The Financial Express

‘AI Agent just destroyed our production data and confessed in writing’, founder rings alarm bells

PocketOS founder Jer Crane revealed that an AI agent powered by Anthropic’s Claude Opus 4.6 wiped out his company’s ...